Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S6100-ON

131

132

133

134

135

136

137

138

139

140

seq 40 permit icmp any any dest-unreachable count

seq 45 permit icmp any any port-unreachable count

DellEMC(config-ext-nacl)#show ipv6 accounting access-list

Extended Ingress IPv6 access list icmpv6 on TenGigabitEthernet 1/1/1/1

Total cam count 9

seq 5 permit icmp any any echo count (40 packets)

seq 10 permit icmp any any echo-reply count (50 packets)

seq 15 permit icmp any any nd-ns count (30 packets)

seq 20 permit icmp any any nd-na count (56 packets)

seq 25 permit icmp any any packet-too-big count (25 packets)

seq 30 permit icmp any any parameter-problem count (34 packets)

seq 35 permit icmp any any time-exceeded count (56 packets)

seq 40 permit icmp any any dest-unreachable count (43 packets)

seq 45 permit icmp any any port-unreachable count (25 packets)

Congure Filters, TCP Packets

To create a lter for TCP packets with a specied sequence number, use the following commands.

1 Create an extended IP ACL and assign it a unique name.

CONFIGURATION mode

ip access-list extended access-list-name

2 Congure an extended IP ACL lter for TCP packets.

CONFIG-EXT-NACL mode

seq sequence-number {deny | permit} tcp {source mask | any | host ip-address} [count [byte]]

[order] [monitor [session-id]] [fragments]

Congure Filters, UDP Packets

To create a lter for UDP packets with a specied sequence number, use the following commands.

1 Create an extended IP ACL and assign it a unique name.

CONFIGURATION mode

ip access-list extended access-list-name

2 Congure an extended IP ACL lter for UDP packets.

CONFIG-EXT-NACL mode

seq sequence-number {deny | permit} tcp {source mask | any | host ip-address} [count [byte]]

[order] [monitor [session-id]] [fragments]

Example of the seq Command

When you create the lters with a specic sequence number, you can create the lters in any order and the lters are placed in the correct

order.

NOTE

: When assigning sequence numbers to lters, you may have to insert a new lter. To prevent reconguring multiple lters,

assign sequence numbers in multiples of ve or another number.

The example below shows how the seq command orders the lters according to the sequence number assigned. In the example, lter 15

was congured before lter 5, but the

show config command displays the lters in the correct order.

DellEMC(config-ext-nacl)#seq 15 deny ip host 112.45.0.0 any log monitor 501

DellEMC(config-ext-nacl)#seq 5 permit tcp 12.1.3.45 0.0.255.255 any

DellEMC(config-ext-nacl)#show config

134

Access Control Lists (ACLs)